Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/S2sMMO8Q4EpmB3bvsJkWdGpDbK0.roa
File: S2sMMO8Q4EpmB3bvsJkWdGpDbK0.roa (raw, json)
Hash identifier: Of90oZIdZMFElrKRWsoKkGV0NDzVBjdJpOmSiY4Bf8M=
Subject key identifier: 4B:6B:0C:30:EF:10:E0:4A:66:07:76:EF:B0:99:16:74:6A:43:6C:AD
Certificate issuer: /CN=23cbbf9348ae558c6efa0c086f24be04cb23c6e9
Certificate serial: 0186DCED721054E099E6A8AD6E52C74B762E
Authority key identifier: 23:CB:BF:93:48:AE:55:8C:6E:FA:0C:08:6F:24:BE:04:CB:23:C6:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I8u_k0iuVYxu-gwIbyS-BMsjxuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/S2sMMO8Q4EpmB3bvsJkWdGpDbK0.roa
Signing time: Mon 13 Mar 2023 21:43:14 +0000
ROA not before: Mon 13 Mar 2023 21:43:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60751
IP address blocks: 185.104.216.0/22 maxlen: 24
185.24.233.0/24 maxlen: 24
185.24.234.0/23 maxlen: 24
2a04:2e01::/32 maxlen: 36
2a04:2e00::/32 maxlen: 36
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:dc:ed:72:10:54:e0:99:e6:a8:ad:6e:52:c7:4b:76:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23cbbf9348ae558c6efa0c086f24be04cb23c6e9
Validity
Not Before: Mar 13 21:43:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b6b0c30ef10e04a660776efb09916746a436cad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bd:e5:35:71:a9:20:94:8f:e3:7f:e8:2d:a1:
ed:6d:b8:02:a1:77:f7:ef:37:10:e5:9c:37:90:b4:
b3:b7:79:40:4d:08:55:dd:60:bc:2b:d7:21:88:8d:
e1:2b:64:f8:62:4f:cf:29:d5:53:00:27:c4:17:a6:
9c:f6:74:c7:12:fa:c1:3b:04:7d:30:5d:6d:7a:d5:
3b:68:cb:82:e7:3d:14:89:d9:9a:f7:2a:6d:20:12:
b9:38:28:e4:a0:a7:1b:30:07:c2:ed:9f:87:45:42:
88:4b:7c:bf:bd:c1:48:7a:3b:a2:d0:55:64:c6:4d:
80:e8:68:d8:6c:df:50:f8:cb:73:5b:75:83:24:e1:
cd:91:b2:5b:66:e4:a5:ae:2b:69:a6:2f:26:91:47:
2c:04:f3:18:a0:81:95:6d:b0:e0:bd:ac:dc:09:dd:
89:4c:ac:1a:de:bb:85:e7:a4:e9:c7:86:9b:6e:c0:
76:75:7d:5a:d6:c5:e5:19:96:3c:ec:51:b2:4d:a2:
d3:6b:62:b5:f8:02:56:16:c0:5d:77:46:aa:3f:ac:
c1:6a:00:73:59:6c:36:d2:0c:ff:9c:14:ca:ba:4e:
7e:ad:bc:ea:a5:85:8f:a2:02:bf:b9:64:7b:e1:6e:
5e:d1:e0:9b:36:99:f1:c7:27:07:c9:fd:6e:53:44:
7f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:6B:0C:30:EF:10:E0:4A:66:07:76:EF:B0:99:16:74:6A:43:6C:AD
X509v3 Authority Key Identifier:
keyid:23:CB:BF:93:48:AE:55:8C:6E:FA:0C:08:6F:24:BE:04:CB:23:C6:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I8u_k0iuVYxu-gwIbyS-BMsjxuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/S2sMMO8Q4EpmB3bvsJkWdGpDbK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/I8u_k0iuVYxu-gwIbyS-BMsjxuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.233.0-185.24.235.255
185.104.216.0/22
IPv6:
2a04:2e00::/31
Signature Algorithm: sha256WithRSAEncryption
6e:48:f0:0d:6c:da:a1:cf:3e:08:f4:97:71:75:21:20:ca:31:
0d:3f:a3:13:74:8c:4a:6f:89:74:05:9b:93:4c:c3:4e:3e:55:
d2:d5:aa:a7:ef:b8:18:7e:e1:9a:8b:4c:a6:3d:2b:62:c3:3b:
c4:b8:5f:c7:19:5d:0a:1b:27:ed:80:fd:23:46:69:b5:d5:9d:
43:17:32:5d:0d:8b:91:07:b8:dc:a1:f4:2a:89:04:26:81:24:
57:18:b6:0c:04:a3:3a:14:42:d1:63:e3:dd:4b:56:eb:ef:26:
47:41:e2:b8:d5:21:7a:9c:75:8e:d2:dd:ff:cc:ca:fc:cc:61:
0f:73:55:72:79:91:71:80:20:4a:6b:28:87:c3:83:03:c6:17:
92:7d:4c:95:83:75:c3:0b:38:5b:46:fa:e5:b5:c4:b1:c0:4b:
c8:55:d4:00:59:9e:ff:67:d6:79:25:a0:16:10:cd:09:24:86:
49:3e:12:58:7a:3e:13:8f:b6:ed:a3:5b:76:ad:fd:0c:91:0a:
42:53:34:84:61:95:05:a1:74:2e:ae:7a:e0:dd:0e:e2:7b:ed:
97:2b:ca:ea:24:98:dc:92:4b:4a:7e:f2:5e:5c:77:84:3e:75:
6d:cf:cf:2e:2a:33:78:b4:05:7d:5d:36:e1:c1:ba:28:e6:6d:
57:4d:c5:d0
-----BEGIN CERTIFICATE-----
MIIFGjCCBAKgAwIBAgISAYbc7XIQVOCZ5qitblLHS3YuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzY2JiZjkzNDhhZTU1OGM2ZWZhMGMwODZmMjRiZTA0Y2Iy
M2M2ZTkwHhcNMjMwMzEzMjE0MzE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjZiMGMzMGVmMTBlMDRhNjYwNzc2ZWZiMDk5MTY3NDZhNDM2Y2FkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArL3lNXGpIJSP43/oLaHtbbgCoXf3
7zcQ5Zw3kLSzt3lATQhV3WC8K9chiI3hK2T4Yk/PKdVTACfEF6ac9nTHEvrBOwR9
MF1tetU7aMuC5z0Uidma9yptIBK5OCjkoKcbMAfC7Z+HRUKIS3y/vcFIejui0FVk
xk2A6GjYbN9Q+MtzW3WDJOHNkbJbZuSlritppi8mkUcsBPMYoIGVbbDgvazcCd2J
TKwa3ruF56Tpx4abbsB2dX1a1sXlGZY87FGyTaLTa2K1+AJWFsBdd0aqP6zBagBz
WWw20gz/nBTKuk5+rbzqpYWPogK/uWR74W5e0eCbNpnxxycHyf1uU0R/zQIDAQAB
o4ICJjCCAiIwHQYDVR0OBBYEFEtrDDDvEOBKZgd277CZFnRqQ2ytMB8GA1UdIwQY
MBaAFCPLv5NIrlWMbvoMCG8kvgTLI8bpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTh1X2swaXVWWXh1LWd3SWJ5Uy1CTXNqeHVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wZTkwZjktZThkMy00NTYyLWE1YjMt
NjIxZWUwNTJhNmZjLzEvUzJzTU1POFE0RXBtQjNidnNKa1dkR3BEYkswLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi8wZTkwZjktZThkMy00NTYyLWE1YjMtNjIxZWUwNTJhNmZj
LzEvSTh1X2swaXVWWXh1LWd3SWJ5Uy1CTXNqeHVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAaBAIAATAUMAwDBAC5GOkD
BAK5GOgDBAK5aNgwDQQCAAIwBwMFASoELgAwDQYJKoZIhvcNAQELBQADggEBAG5I
8A1s2qHPPgj0l3F1ISDKMQ0/oxN0jEpviXQFm5NMw04+VdLVqqfvuBh+4ZqLTKY9
K2LDO8S4X8cZXQobJ+2A/SNGabXVnUMXMl0Ni5EHuNyh9CqJBCaBJFcYtgwEozoU
QtFj491LVuvvJkdB4rjVIXqcdY7S3f/MyvzMYQ9zVXJ5kXGAIEprKIfDgwPGF5J9
TJWDdcMLOFtG+uW1xLHAS8hV1ABZnv9n1nkloBYQzQkkhkk+Elh6PhOPtu2jW3at
/QyRCkJTNIRhlQWhdC6ueuDdDuJ77ZcryuokmNySS0p+8l5cd4Q+dW3Pzy4qM3i0
BX1dNuHBuijmbVdNxdA=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:18 2023 by rpki-client on console-fra.rpki-client.org